You have configured a Cisco ESA URL filtering with a URL Category action that redirects the URLs of adult
content sites and sites that have not been categorized to the Cisco Cloud Web Security proxy service.
However, you receive a report that users are successfully accessing adult content sites from the company
network.
Which of the following could be the problem? (Select the best answer.)
A.
You did not specify any text to replace the URL.
B.
You did not defang the URL so that it cannot be clicked.
C.
The connection to the Cisco Cloud Web Security proxy service timed out.
D.
The adult content sites being visited are uncategorized.
Explanation:
The problem could be that the connection to the Cisco Cloud Web Security proxy service timed out if you have
configured a Uniform Resource Locator (URL) Category action that redirects the URLs of adult content sites
and sites that have not been categorized to the proxy service. The Cisco Email Security Appliance (ESA)
supports URL filtering, which can be used to test the reputation of URL links in email messages or to compare
the content of the URL to a list of categories of sites that violate company policy. By using URL filtering with
URL categorization, it is possible to limit user access to a given site without relying on a blacklist of the site’s
possible IP addresses.
There are three options for action when a link in an email message matches a given URL category or its
reputation score falls within a specified range:
– Defang the URL – renders the URL unclickable, although the user can still copy and paste the URL
– Redirect the URL to the Cisco Cloud Web Security proxy service redirects the URL to a proxy, which blocks
the site if it is malicious and displays a message to the user
– Replace the URL with specific text or the URL to thirdparty proxy service – replaces the link in the original
email message with specific warning text provided by the administrator or with a link that redirects to a
thirdparty proxy service
You can also choose to apply any of those actions to sites that are not yet categorized in the URL database. In
this scenario, both sites that fit into the adult URL category and sites that are not categorized should be
redirected to the Cisco Cloud Web Security proxy service. However, if a connection to the Cisco Cloud Web
Security proxy service times out, URL filtering will automatically allow the user to connect to the target site by
using the link in the original email message.
There is not enough information in this scenario to determine whether the adult sites being visited are
uncategorized. However, if the sites were uncategorized and the connection to the Cisco Cloud Web Security
proxy service was reliable, users would still be redirected to the Cisco Cloud Web Security proxy. In this
scenario, you have configured uncategorized sites to redirect to the proxy. You do not need to defang the URL.
In this scenario, you have chosen to redirect adult site content and uncategorized content to the Cisco Cloud
Web Security proxy.
You do not need to specify text to replace the URL. In this scenario, you have chosen to redirect adult site
content and uncategorized content to the Cisco Cloud Web Security proxy.Cisco: Cisco AsyncOS 8.5.6 for Email User Guide: Redirected URLs: What Does the End User Experience?
(PDF)